Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/lmAtAl8YQ-dl8sLK8_j4vZwrpDQ.roa
File: lmAtAl8YQ-dl8sLK8_j4vZwrpDQ.roa (raw, json)
Hash identifier: tG5nFx3CJubTlW05d4AvzLuQSbnKUQTQfm8v5d83NHA=
Subject key identifier: 96:60:2D:02:5F:18:43:E7:65:F2:C2:CA:F3:F8:F8:BD:9C:2B:A4:34
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0A6C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/lmAtAl8YQ-dl8sLK8_j4vZwrpDQ.roa
Signing time: Thu 15 Sep 2022 02:49:22 +0000
ROA not before: Thu 15 Sep 2022 02:49:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18182
IP address blocks: 219.84.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 15 02:49:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96602D025F1843E765F2C2CAF3F8F8BD9C2BA434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:07:fc:3c:c8:65:96:89:26:e0:e0:9d:bb:0d:
2b:71:ba:e2:81:98:65:9b:11:05:91:77:cd:f1:61:
05:fa:3b:61:08:eb:1f:fb:79:8c:f7:e1:73:a2:be:
fd:3d:9d:fa:93:4f:ab:3b:a7:81:2b:2c:82:58:de:
fd:84:ed:dd:b4:f2:89:31:f9:59:16:57:ee:64:20:
41:99:9e:36:e0:12:53:b5:67:15:f0:f9:e5:1e:61:
6f:a7:15:60:ad:ee:81:7b:bf:e2:67:97:05:46:53:
65:f7:16:75:60:b7:eb:8c:6d:e3:5c:9b:ee:9c:12:
dd:b8:0b:59:da:db:ff:3b:ee:36:00:ca:41:61:5f:
9d:34:49:89:b5:f9:be:04:f5:67:12:ee:9b:65:b2:
7b:33:6f:cf:1f:93:ac:97:0c:35:b5:c8:3f:33:02:
ae:15:d2:f0:17:d9:b5:39:11:61:5a:a5:17:08:50:
c7:f8:e5:b9:77:1f:76:dd:89:ce:09:3e:b9:8e:0d:
36:4b:f2:bb:cd:a8:0b:ec:f9:87:ef:5d:cc:f3:44:
af:9e:ea:ef:52:2f:6f:41:09:4d:bb:85:18:f9:a9:
88:50:eb:05:0b:fa:17:cb:44:da:21:e9:c8:8b:56:
b8:7e:81:3e:12:08:21:28:f0:b6:7a:04:de:70:15:
93:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:60:2D:02:5F:18:43:E7:65:F2:C2:CA:F3:F8:F8:BD:9C:2B:A4:34
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/lmAtAl8YQ-dl8sLK8_j4vZwrpDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.84.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8c:69:cb:48:32:0f:81:90:56:ca:70:ab:7a:78:53:81:88:0f:
10:ff:ce:20:5a:d3:f1:71:2f:54:37:92:4f:db:6a:61:cb:98:
e3:b5:5f:08:a0:f2:d5:60:77:37:65:ba:fe:b4:34:6e:9a:00:
c9:5f:b2:f9:a6:65:9e:29:e1:37:d4:ba:da:41:e8:b3:f5:c4:
c7:ff:d0:7a:96:d9:7f:9b:e6:0c:e0:c2:9d:39:b2:d4:9a:f5:
34:cd:28:34:34:06:c4:1b:42:c7:9c:5f:73:c7:22:96:95:c3:
9f:a4:04:6b:65:17:03:78:6a:9e:c0:ba:93:24:93:89:35:b1:
6d:db:3a:b1:22:95:a4:4c:db:c6:d9:c7:10:34:b7:5b:c8:7b:
ab:d7:90:16:b0:11:3e:1e:49:d5:96:9b:c0:36:6c:c6:18:53:
4b:90:11:14:8a:e3:56:1b:3c:20:6e:a8:28:5c:70:9c:a3:dd:
35:0c:88:6d:ff:c9:ce:1a:f0:78:18:11:73:f0:c7:e2:21:b8:
95:b0:ab:48:24:56:ba:1c:92:c4:7a:fc:8d:de:35:c8:d0:b5:
df:00:7a:05:e0:d8:1f:c8:9a:66:16:dc:af:e0:03:f6:5e:a8:
e4:b6:ba:1a:cb:86:ba:44:bc:fd:82:a7:5d:1c:e3:b9:18:21:
e7:a4:e2:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org